Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/gqcjYgWgz_irfuixPNdtCRdktpc.roa
File: gqcjYgWgz_irfuixPNdtCRdktpc.roa (raw, json)
Hash identifier: Pdqt9IHHNu57r96eBr74DzOm1aNeJlg0/u/jd536mj8=
Subject key identifier: 82:A7:23:62:05:A0:CF:F8:AB:7E:E8:B1:3C:D7:6D:09:17:64:B6:97
Certificate issuer: /CN=19b800c39126db3ca4e0d56910f0ad379257e4a0
Certificate serial: 039C042E
Authority key identifier: 19:B8:00:C3:91:26:DB:3C:A4:E0:D5:69:10:F0:AD:37:92:57:E4:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GbgAw5Em2zyk4NVpEPCtN5JX5KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/gqcjYgWgz_irfuixPNdtCRdktpc.roa
Signing time: Sat 01 Jan 2022 15:57:49 +0000
ROA not before: Sat 01 Jan 2022 15:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12897
IP address blocks: 185.117.68.0/22 maxlen: 22
195.80.52.0/22 maxlen: 22
94.16.64.0/19 maxlen: 19
92.119.8.0/22 maxlen: 22
185.189.140.0/22 maxlen: 22
185.238.252.0/22 maxlen: 22
212.232.80.0/20 maxlen: 20
45.14.188.0/22 maxlen: 22
85.132.192.0/19 maxlen: 19
213.188.96.0/19 maxlen: 19
45.131.36.0/22 maxlen: 22
149.249.128.0/19 maxlen: 19
45.136.168.0/22 maxlen: 22
213.157.0.0/19 maxlen: 19
134.101.16.0/20 maxlen: 20
95.131.96.0/21 maxlen: 21
45.143.76.0/22 maxlen: 22
45.10.60.0/22 maxlen: 22
185.9.28.0/22 maxlen: 22
45.128.180.0/22 maxlen: 22
94.46.64.0/19 maxlen: 19
45.93.108.0/22 maxlen: 22
46.243.80.0/21 maxlen: 21
185.194.64.0/22 maxlen: 22
2a02:b98::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60556334 (0x39c042e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19b800c39126db3ca4e0d56910f0ad379257e4a0
Validity
Not Before: Jan 1 15:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82a7236205a0cff8ab7ee8b13cd76d091764b697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6b:98:b5:af:63:a7:5e:37:5d:3c:0b:2a:85:
c1:34:e2:b9:05:0a:61:a2:01:43:21:d1:21:9f:f4:
b0:ff:4e:fe:f3:91:62:b5:e7:0c:8c:8d:5d:64:7c:
40:9d:6d:55:04:68:51:5b:c0:f4:d2:76:63:36:10:
a2:ec:fe:f8:31:79:b6:58:7a:fd:cc:2b:37:b3:3c:
ec:a9:e2:93:8e:c2:c6:a8:69:4f:8b:07:b9:2a:95:
97:aa:5f:52:e8:d0:a2:99:94:1d:60:63:d8:0a:90:
6c:80:65:d3:de:52:05:29:98:7d:d6:fb:f5:3e:63:
44:e8:2c:04:6a:05:54:b1:b6:57:e2:30:96:b9:ed:
28:c5:45:89:b2:28:f7:ea:4d:9a:d1:bf:fc:d7:93:
ab:f7:65:a0:70:38:60:7d:10:d6:ef:cb:79:06:bd:
5e:29:cc:d8:d1:fd:61:07:04:f8:2a:50:e5:94:f1:
63:e6:8b:0a:10:09:b6:22:62:09:60:2a:84:c4:6c:
d2:df:6e:97:17:05:d6:2d:e5:20:aa:4c:cf:40:a0:
9f:44:e8:4b:f0:45:df:54:f4:79:28:b6:2e:2f:74:
57:9e:b1:b1:ad:0b:8d:e3:a3:6d:56:e3:3e:08:21:
9d:02:a8:c8:ea:35:82:00:26:48:23:1f:46:aa:43:
fe:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A7:23:62:05:A0:CF:F8:AB:7E:E8:B1:3C:D7:6D:09:17:64:B6:97
X509v3 Authority Key Identifier:
keyid:19:B8:00:C3:91:26:DB:3C:A4:E0:D5:69:10:F0:AD:37:92:57:E4:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GbgAw5Em2zyk4NVpEPCtN5JX5KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/gqcjYgWgz_irfuixPNdtCRdktpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/GbgAw5Em2zyk4NVpEPCtN5JX5KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.60.0/22
45.14.188.0/22
45.93.108.0/22
45.128.180.0/22
45.131.36.0/22
45.136.168.0/22
45.143.76.0/22
46.243.80.0/21
85.132.192.0/19
92.119.8.0/22
94.16.64.0/19
94.46.64.0/19
95.131.96.0/21
134.101.16.0/20
149.249.128.0/19
185.9.28.0/22
185.117.68.0/22
185.189.140.0/22
185.194.64.0/22
185.238.252.0/22
195.80.52.0/22
212.232.80.0/20
213.157.0.0/19
213.188.96.0/19
IPv6:
2a02:b98::/32
Signature Algorithm: sha256WithRSAEncryption
7c:6c:9b:25:90:91:4a:78:a2:43:1a:9e:5c:28:28:78:1c:9c:
eb:8e:0c:df:cb:1f:53:f8:6d:dd:17:7d:dd:7c:49:cf:af:55:
d9:0f:11:70:5f:a2:de:6e:04:2e:d6:54:cd:b8:e0:1f:ab:75:
2d:47:df:aa:73:ad:c1:8a:2c:4e:08:e0:78:37:96:74:6a:11:
ab:1d:81:a7:36:0b:63:c4:cb:a3:f1:d0:e6:c1:85:4b:d0:24:
56:ad:fd:8b:be:4e:59:75:f9:4f:49:5d:8f:01:76:65:3f:d4:
ad:17:01:f2:bf:5d:55:ac:d0:e2:ee:a5:91:48:14:33:f6:05:
c9:ba:e6:9a:79:20:13:6f:18:75:6e:39:0c:35:61:bf:93:8e:
62:81:b6:dc:d9:45:b6:fc:78:21:ef:57:9a:29:82:c1:0b:a5:
b6:19:b3:bd:ce:db:4c:1f:b7:36:67:de:82:a5:7c:35:89:1c:
57:14:2a:ab:5a:dd:0e:60:9d:82:d1:a0:36:3d:07:af:f3:62:
7e:25:17:28:e1:fd:6a:03:4b:ca:25:22:6e:68:86:5d:5e:1d:
e6:0d:cf:83:0e:db:91:36:97:6c:28:d8:d8:e8:9f:2b:22:42:
71:e7:3c:b8:9c:3c:b8:d3:f3:e4:0a:52:e8:0b:41:41:9a:2a:
7b:4f:a8:10
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgIEA5wELjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
OWI4MDBjMzkxMjZkYjNjYTRlMGQ1NjkxMGYwYWQzNzkyNTdlNGEwMB4XDTIyMDEw
MTE1NTc0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODJhNzIzNjIwNWEw
Y2ZmOGFiN2VlOGIxM2NkNzZkMDkxNzY0YjY5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMlrmLWvY6deN108CyqFwTTiuQUKYaIBQyHRIZ/0sP9O/vOR
YrXnDIyNXWR8QJ1tVQRoUVvA9NJ2YzYQouz++DF5tlh6/cwrN7M87Knik47Cxqhp
T4sHuSqVl6pfUujQopmUHWBj2AqQbIBl095SBSmYfdb79T5jROgsBGoFVLG2V+Iw
lrntKMVFibIo9+pNmtG//NeTq/dloHA4YH0Q1u/LeQa9XinM2NH9YQcE+CpQ5ZTx
Y+aLChAJtiJiCWAqhMRs0t9ulxcF1i3lIKpMz0Cgn0ToS/BF31T0eSi2Li90V56x
sa0LjeOjbVbjPgghnQKoyOo1ggAmSCMfRqpD/lkCAwEAAaOCAqcwggKjMB0GA1Ud
DgQWBBSCpyNiBaDP+Kt+6LE8120JF2S2lzAfBgNVHSMEGDAWgBQZuADDkSbbPKTg
1WkQ8K03klfkoDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0diZ0F3NUVtMnp5azROVnBFUEN0TjVKWDVLQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvODRiNDg5LThiNmYtNDU5ZC05YTMxLWYxOGFkOWY0Y2MzNC8x
L2dxY2pZZ1dnel9pcmZ1aXhQTmR0Q1Jka3RwYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
ODRiNDg5LThiNmYtNDU5ZC05YTMxLWYxOGFkOWY0Y2MzNC8xL0diZ0F3NUVtMnp5
azROVnBFUEN0TjVKWDVLQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
vAYIKwYBBQUHAQcBAf8EgawwgakwgZcEAgABMIGQAwQCLQo8AwQCLQ68AwQCLV1s
AwQCLYC0AwQCLYMkAwQCLYioAwQCLY9MAwQDLvNQAwQFVYTAAwQCXHcIAwQFXhBA
AwQFXi5AAwQDX4NgAwQEhmUQAwQFlfmAAwQCuQkcAwQCuXVEAwQCub2MAwQCucJA
AwQCue78AwQCw1A0AwQE1OhQAwQF1Z0AAwQF1bxgMA0EAgACMAcDBQAqAguYMA0G
CSqGSIb3DQEBCwUAA4IBAQB8bJslkJFKeKJDGp5cKCh4HJzrjgzfyx9T+G3dF33d
fEnPr1XZDxFwX6LebgQu1lTNuOAfq3UtR9+qc63BiixOCOB4N5Z0ahGrHYGnNgtj
xMuj8dDmwYVL0CRWrf2Lvk5ZdflPSV2PAXZlP9StFwHyv11VrNDi7qWRSBQz9gXJ
uuaaeSATbxh1bjkMNWG/k45igbbc2UW2/Hgh71eaKYLBC6W2GbO9zttMH7c2Z96C
pXw1iRxXFCqrWt0OYJ2C0aA2PQev82J+JRco4f1qA0vKJSJuaIZdXh3mDc+DDtuR
NpdsKNjY6J8rIkJx5zy4nDy40/PkClLoC0FBmip7T6gQ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-ams.rpki-client.org